Period
to 17 October 2019

The following table provides summary statistics for contract job vacancies with a requirement for PCI DSS skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited PCI DSS over the 6 months to 17 October 2019 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Payment Card Industry Data Security Standard (PCI DSS)
UK
6 months to
17 Oct 2019
Same period 2018 Same period 2017
Rank 496 495 425
Rank change year-on-year -1 -70 -50
Contract jobs citing PCI DSS 327 467 535
As % of all contract IT jobs advertised in the UK 0.38% 0.45% 0.54%
As % of the Quality Assurance & Compliance category 3.71% 4.12% 4.35%
Number of daily rates quoted 201 312 328
UK median daily rate £525 £488 £475
Median daily rate % change year-on-year +7.69% +2.63% +2.70%
10th Percentile £338 £350 £313
90th Percentile £713 £661 £627
UK excluding London median daily rate £500 £475 £475
% change year-on-year +5.26% - +5.56%
Number of hourly rates quoted 2 0 1
UK median hourly rate £20.11 - £30.00
10th Percentile £19.05 - £27.50
90th Percentile £21.16 - £32.50
UK excluding London median hourly rate £20.11 - £30.00

PCI DSS is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 8,823 11,323 12,311
As % of all contract IT jobs advertised in the UK 10.37% 10.97% 12.40%
Number of daily rates quoted 5,497 7,173 8,054
UK median daily rate £450 £450 £440
Median daily rate % change year-on-year - +2.27% +6.02%
10th Percentile £225 £250 £256
90th Percentile £633 £625 £637
UK excluding London median daily rate £425 £402 £400
% change year-on-year +5.76% +0.46% +6.67%
Number of hourly rates quoted 400 398 367
UK median hourly rate £21.42 £21.76 £20.00
Median hourly rate % change year-on-year -1.59% +8.80% -12.42%
10th Percentile £11.11 £11.21 £10.63
90th Percentile £56.25 £50.00 £47.88
UK excluding London median hourly rate £23.67 £21.88 £20.00
% change year-on-year +8.18% +9.40% -20.00%

PCI DSS
Job Vacancy Trend

Job postings citing PCI DSS as a percentage of all IT jobs advertised.

Job vacancy trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing PCI DSS.

Contractor daily rate trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing PCI DSS over the 6 months to 17 October 2019.

Contractor daily rate histogram for PCI DSS in the UK

PCI DSS
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing PCI DSS.

Contractor hourly rate trend for PCI DSS in the UK

PCI DSS
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing PCI DSS within the UK over the 6 months to 17 October 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -28 294 £526 +5.20% 135
UK excluding London +8 185 £500 +5.26% 105
London +7 128 £563 +9.76% 32
South East -9 58 £475 -8.65% 27
North of England +29 49 £540 +16.76% 31
Yorkshire +30 31 £540 +10.77% 11
Midlands +43 25 £488 +25.00% 19
South West -15 24 £526 +15.60% 14
West Midlands +42 22 £488 +21.88% 15
North West +27 17 £445 +2.89% 18
Wales +28 13 £400 -15.79% 2
Scotland +22 9 £375 -7.41%
East of England +19 7 £488 -1.27% 12
East Midlands +24 3 - - 4
North East +16 1 £575 +59.72% 2

For the 6 months to 17 October 2019, IT contractor jobs citing PCI DSS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for PCI DSS.

1 143 (43.73%) ISO/IEC 27001
2 126 (38.53%) Information Security
3 110 (33.64%) CISSP
4 84 (25.69%) CISM
5 77 (23.55%) AWS
6 73 (22.32%) Finance
6 73 (22.32%) Microsoft
7 72 (22.02%) Azure
8 68 (20.80%) Agile Software Development
8 68 (20.80%) GDPR
9 67 (20.49%) Linux
10 64 (19.57%) NIST
11 61 (18.65%) SIEM
11 61 (18.65%) Sarbanes-Oxley
12 60 (18.35%) Firewall
13 59 (18.04%) Security Architecture
14 58 (17.74%) ITIL
15 50 (15.29%) Windows
15 50 (15.29%) Cybersecurity
15 50 (15.29%) DevOps
16 49 (14.98%) Active Directory
17 47 (14.37%) VPN
17 47 (14.37%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
18 45 (13.76%) Docker
18 45 (13.76%) Data Protection
19 43 (13.15%) Unix
19 43 (13.15%) Stakeholder Management
20 39 (11.93%) Analytical Skills
21 36 (11.01%) Problem-Solving
21 36 (11.01%) CISA

PCI DSS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 19 (5.81%) IIS
2 12 (3.67%) OpenStack
3 8 (2.45%) Apache
3 8 (2.45%) Elasticsearch
3 8 (2.45%) MS Exchange
4 4 (1.22%) Exchange Server 2010
4 4 (1.22%) JBoss
5 3 (0.92%) Confluence
6 2 (0.61%) Commerce Server
6 2 (0.61%) nginx
7 1 (0.31%) Apache Spark
7 1 (0.31%) Blackberry Enterprise Server
7 1 (0.31%) Drupal
7 1 (0.31%) SharePoint
7 1 (0.31%) Skype for Business
7 1 (0.31%) Tomcat
7 1 (0.31%) WebSphere
Applications
1 12 (3.67%) Microsoft Excel
2 11 (3.36%) Microsoft PowerPoint
3 2 (0.61%) MS Visio
4 1 (0.31%) Microsoft Office
4 1 (0.31%) Spreadsheet
Business Applications
1 4 (1.22%) Payment Gateway
2 1 (0.31%) BASE24
2 1 (0.31%) Postilion
Cloud Services
1 77 (23.55%) AWS
2 72 (22.02%) Azure
3 35 (10.70%) SaaS
4 25 (7.65%) PaaS
5 22 (6.73%) Office 365
6 18 (5.50%) IaaS
7 15 (4.59%) GCP
8 13 (3.98%) GitHub
9 7 (2.14%) Azure ExpressRoute
10 6 (1.83%) Cloud Computing
10 6 (1.83%) OpenShift
11 5 (1.53%) Serverless
12 4 (1.22%) Power Platform
13 2 (0.61%) Akamai
13 2 (0.61%) Virtual Private Cloud
14 1 (0.31%) Mimecast
14 1 (0.31%) Slack
14 1 (0.31%) Yammer
Communications & Networking
1 60 (18.35%) Firewall
2 47 (14.37%) VPN
3 29 (8.87%) Network Security
4 23 (7.03%) DNS
5 21 (6.42%) VLAN
6 18 (5.50%) WAN
7 14 (4.28%) Internet
7 14 (4.28%) LAN
8 9 (2.75%) Intrusion Detection
9 8 (2.45%) VoIP
10 7 (2.14%) DHCP
10 7 (2.14%) Wireless
11 6 (1.83%) 3GPP
11 6 (1.83%) Cisco Firepower
11 6 (1.83%) SAN
11 6 (1.83%) Software-Defined Networking
11 6 (1.83%) TCP/IP
12 5 (1.53%) Ethernet
12 5 (1.53%) MPLS
12 5 (1.53%) OSPF
Database & Business Intelligence
1 18 (5.50%) Big Data
2 16 (4.89%) SQL Server
3 13 (3.98%) MongoDB
3 13 (3.98%) MySQL
4 9 (2.75%) PostgreSQL
5 8 (2.45%) Relational Database
6 4 (1.22%) MariaDB
6 4 (1.22%) Oracle Reports
6 4 (1.22%) Power BI
7 3 (0.92%) DB2
7 3 (0.92%) Hadoop
7 3 (0.92%) Oracle Database
8 2 (0.61%) MS Access
8 2 (0.61%) Redis
9 1 (0.31%) Apache Cassandra
9 1 (0.31%) Azure SQL Database
9 1 (0.31%) Data Warehouse
9 1 (0.31%) RDBMS
9 1 (0.31%) SQL Server 2008
9 1 (0.31%) SQL Server Reporting Services
Development Applications
1 18 (5.50%) Jenkins
2 8 (2.45%) Git (software)
3 5 (1.53%) JIRA
3 5 (1.53%) Visual Studio
4 4 (1.22%) git-flow
5 2 (0.61%) AppScan
5 2 (0.61%) Bitbucket
5 2 (0.61%) GitLab
5 2 (0.61%) Sonatype Nexus
5 2 (0.61%) TeamCity
6 1 (0.31%) Artifactory
6 1 (0.31%) Atlassian Bamboo
6 1 (0.31%) Cucumber
6 1 (0.31%) Selenium
6 1 (0.31%) Snyk
6 1 (0.31%) SoapUI
6 1 (0.31%) Travis CI
6 1 (0.31%) tSQLt
6 1 (0.31%) Vagrant
General
1 73 (22.32%) Finance
2 17 (5.20%) Legal
3 16 (4.89%) Public Sector
4 14 (4.28%) Telecoms
5 12 (3.67%) Law
5 12 (3.67%) Retail
6 4 (1.22%) Banking
6 4 (1.22%) Local Government
7 3 (0.92%) Military
7 3 (0.92%) Police
8 2 (0.61%) Advertising
8 2 (0.61%) Financial Institution
9 1 (0.31%) Automotive
9 1 (0.31%) Back Office
9 1 (0.31%) French Language
9 1 (0.31%) Games
9 1 (0.31%) German Language
9 1 (0.31%) Italian Language
9 1 (0.31%) Marketing
9 1 (0.31%) Retail Banking
Job Titles
1 77 (23.55%) Architect
2 57 (17.43%) Security Architect
3 41 (12.54%) Analyst
4 33 (10.09%) Consultant
5 32 (9.79%) Security Engineer
6 30 (9.17%) Security Consultant
7 22 (6.73%) Cloud Architect
7 22 (6.73%) Security Analyst
8 19 (5.81%) Security Officer
9 18 (5.50%) Cloud Engineer
9 18 (5.50%) Developer
10 11 (3.36%) Administrator
10 11 (3.36%) Information Security Consultant
10 11 (3.36%) IT Security Officer
11 10 (3.06%) Business Analyst
11 10 (3.06%) Cybersecurity Architect
11 10 (3.06%) Infrastructure Engineer
11 10 (3.06%) Network Engineer
12 8 (2.45%) Security Manager
13 7 (2.14%) Information Security Officer
Libraries, Frameworks & Software Standards
1 32 (9.79%) Web Services
2 23 (7.03%) JSON
3 12 (3.67%) Node.js
4 8 (2.45%) Ruby on Rails
4 8 (2.45%) XML
5 7 (2.14%) Express
6 6 (1.83%) .NET
6 6 (1.83%) Middleware
7 4 (1.22%) .NET Core
7 4 (1.22%) GraphQL
7 4 (1.22%) J2EE
7 4 (1.22%) REST
7 4 (1.22%) Spring
8 3 (0.92%) RESTful
8 3 (0.92%) SOAP
9 2 (0.61%) CSS
9 2 (0.61%) HTML
9 2 (0.61%) OAuth
9 2 (0.61%) OpenID
9 2 (0.61%) YAML
Miscellaneous
1 39 (11.93%) Analytical Skills
2 30 (9.17%) Management Information System
3 21 (6.42%) PKI
4 20 (6.12%) Cyberthreat
5 18 (5.50%) Data Centre
6 15 (4.59%) Enterprise Cloud
7 9 (2.75%) Mobile App
7 9 (2.75%) Public Cloud
7 9 (2.75%) SCADA
8 7 (2.14%) Greenfield Project
9 6 (1.83%) Data Protection Act
9 6 (1.83%) N-Tier
10 5 (1.53%) Distributed Denial-of-Service
10 5 (1.53%) Hybrid Cloud
10 5 (1.53%) Mobile Payment
10 5 (1.53%) Virtual Team
11 4 (1.22%) Chip and PIN
11 4 (1.22%) Cloud Native
11 4 (1.22%) Enterprise Software
12 3 (0.92%) Clustering
Operating Systems
1 67 (20.49%) Linux
2 50 (15.29%) Windows
3 43 (13.15%) Unix
4 20 (6.12%) Red Hat Enterprise Linux
5 16 (4.89%) Windows Server
6 11 (3.36%) Windows Server 2008
7 10 (3.06%) Mac OS
7 10 (3.06%) Windows Server 2012
8 6 (1.83%) Solaris
9 5 (1.53%) Windows 10
9 5 (1.53%) Windows 7
10 4 (1.22%) Android
10 4 (1.22%) Apple iOS
10 4 (1.22%) Debian
10 4 (1.22%) Mac OS X
10 4 (1.22%) Windows Server 2003
11 2 (0.61%) AIX
11 2 (0.61%) CentOS
11 2 (0.61%) OS/400
11 2 (0.61%) Windows XP
Processes & Methodologies
1 126 (38.53%) Information Security
2 68 (20.80%) Agile Software Development
3 61 (18.65%) SIEM
4 59 (18.04%) Security Architecture
5 58 (17.74%) ITIL
6 50 (15.29%) Cybersecurity
6 50 (15.29%) DevOps
7 45 (13.76%) Data Protection
8 43 (13.15%) Stakeholder Management
9 36 (11.01%) Problem-Solving
10 33 (10.09%) Security Operations
11 32 (9.79%) Risk Management
12 29 (8.87%) Vulnerability Management
13 25 (7.65%) Microservices
14 24 (7.34%) OWASP
15 23 (7.03%) Change Management
16 22 (6.73%) Continuous Delivery
16 22 (6.73%) Project Management
17 21 (6.42%) Threat Intelligence
17 21 (6.42%) Vulnerability Scanning
Programming Languages
1 33 (10.09%) Python
2 27 (8.26%) Java
3 26 (7.95%) Ruby
4 17 (5.20%) Bash Shell
4 17 (5.20%) Perl
5 16 (4.89%) PowerShell
5 16 (4.89%) SQL
6 9 (2.75%) Go
7 8 (2.45%) JavaScript
8 7 (2.14%) PHP
9 5 (1.53%) C
9 5 (1.53%) T-SQL
10 3 (0.92%) Shell Script
11 2 (0.61%) C#
11 2 (0.61%) C++
12 1 (0.31%) Apple Swift
12 1 (0.31%) Kotlin
12 1 (0.31%) R
12 1 (0.31%) Scala
Qualifications
1 110 (33.64%) CISSP
2 84 (25.69%) CISM
3 36 (11.01%) CISA
4 30 (9.17%) Cisco Certification
5 29 (8.87%) Security Cleared
6 28 (8.56%) AWS Certification
7 22 (6.73%) Degree
8 16 (4.89%) SC Cleared
9 14 (4.28%) CISMP
9 14 (4.28%) IISP
10 13 (3.98%) SANS
11 11 (3.36%) (ISC)2 CCSP
11 11 (3.36%) ISO 27001 Lead Implementer
11 11 (3.36%) ISSMP
12 10 (3.06%) CCNA
13 7 (2.14%) CCSP
13 7 (2.14%) CEH
13 7 (2.14%) ITIL Certification
14 6 (1.83%) CCIE
14 6 (1.83%) CRISC
Quality Assurance & Compliance
1 143 (43.73%) ISO/IEC 27001
2 68 (20.80%) GDPR
3 64 (19.57%) NIST
4 61 (18.65%) Sarbanes-Oxley
5 47 (14.37%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 29 (8.87%) COBIT
7 18 (5.50%) HIPAA
8 11 (3.36%) Cyber Essentials
9 7 (2.14%) SLA
10 5 (1.53%) PA-DSS
11 4 (1.22%) QA
12 3 (0.92%) GLBA
12 3 (0.92%) NCSC
13 2 (0.61%) FISMA
13 2 (0.61%) ISO 9001
13 2 (0.61%) NIST 800
14 1 (0.31%) Disclosure Scotland
14 1 (0.31%) GAMP
14 1 (0.31%) ISO 22301
14 1 (0.31%) ISO 8583
System Software
1 49 (14.98%) Active Directory
2 45 (13.76%) Docker
3 17 (5.20%) VMware Infrastructure
4 5 (1.53%) Hyper-V
4 5 (1.53%) Virtual Machines
5 4 (1.22%) VMware ESXi
5 4 (1.22%) XenApp
6 3 (0.92%) vSphere
6 3 (0.92%) XenDesktop
7 2 (0.61%) Citrix Hypervisor
7 2 (0.61%) NFS
8 1 (0.31%) KVM
8 1 (0.31%) Microsoft App-V
8 1 (0.31%) Terminal Services
8 1 (0.31%) VMware NSX
Systems Management
1 24 (7.34%) CASB
2 21 (6.42%) Puppet
3 20 (6.12%) Kubernetes
4 19 (5.81%) Opscode Chef
5 15 (4.59%) Suricata
6 9 (2.75%) Ansible
7 6 (1.83%) SCCM
8 5 (1.53%) Nessus
9 4 (1.22%) HP Fortify
9 4 (1.22%) Kibana
9 4 (1.22%) Terraform
10 3 (0.92%) IBM Guardium
10 3 (0.92%) SCOrch
11 2 (0.61%) FortiGate
11 2 (0.61%) SELinux
11 2 (0.61%) Single Sign-On
11 2 (0.61%) WebInspect
11 2 (0.61%) ZENworks
12 1 (0.31%) OSSEC
12 1 (0.31%) ZABBIX
Vendors
1 73 (22.32%) Microsoft
2 28 (8.56%) Cisco
3 25 (7.65%) Qualys
4 23 (7.03%) Splunk
5 22 (6.73%) VMware
6 15 (4.59%) Imperva
6 15 (4.59%) Oracle
7 11 (3.36%) Red Hat
8 10 (3.06%) CheckPoint
8 10 (3.06%) Citrix
9 7 (2.14%) Forcepoint
9 7 (2.14%) HP
9 7 (2.14%) Juniper
9 7 (2.14%) Meraki
10 6 (1.83%) F5
10 6 (1.83%) Google
10 6 (1.83%) Incapsula
11 5 (1.53%) McAfee
12 4 (1.22%) Avaya
12 4 (1.22%) Ericsson